OpenShift Considerations

Introduction

This guide explains how to deploy MetaDefender Storage Security (MDSS) on OpenShift using Helm with the required OpenShift-specific configuration.

Prerequisites

  • Access to OpenShift cluster with admin privileges
  • Helm 3.x installed
  • oc command-line tool configured
  • Ability to grant privileged SCC permissions

Deployment Steps

1. Login to OpenShift

Bash
Copy

2. Create Project

Bash
Copy

3. Create Service Account and Grant Permissions

The MDSS components require privileged access to function properly on OpenShift:

Bash
Copy

Important: The privileged SCC is necessary because several MDSS components require elevated permissions.

4. Add Helm Repository

Bash
Copy

5. Prepare OpenShift Values File

Create a file named mdss-openshift.yml with the OpenShift-specific configuration:

Bash
Copy

6. Deploy the MDSS Helm Chart

Bash
Copy

Note: The OpenShift values file configures the SecurityContext to run as user 0 (root), assigns the mdss service account to pods, and adjusts command arguments for compatibility.

7. Verify Deployment

Bash
Copy

Wait until all pods are in Running state. This may take a few minutes as containers initialize.

Post-Deployment Configuration

Access MDSS Console

Bash
Copy

Access the web interface using the hostname provided by the route.

Maintenance

Upgrading MDSS

Bash
Copy

Uninstalling MDSS

Bash
Copy
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard